KDE file manager (kfm) uses a TCP server for certain file operations, which allows remote malicious users to modify arbitrary files by sending a copy command to the server.
kde kde